Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Patrick on vr 15/05/2015 at 9:44:53,26. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Patrick\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 15/05/2015 9:49:01 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Softland deleted successfully C:\PROGRA~2\COMMON~1\Pegasus Imaging deleted successfully C:\PROGRA~2\COMMON~1\Sony Shared deleted successfully C:\Program Files\Common Files\Sony Shared deleted successfully C:\PROGRA~3\LAVA SoftWorks deleted successfully C:\PROGRA~3\ProcessLasso deleted successfully C:\PROGRA~3\Web Page Maker deleted successfully C:\Users\Patrick\AppData\Roaming\FlashgetSetup deleted successfully C:\Users\Patrick\AppData\Roaming\New Version Available deleted successfully C:\Users\Patrick\AppData\Roaming\Vso deleted successfully C:\Users\Patrick\AppData\Local\CrashDumps deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Leawo Video Converter versie 5.3.0.0 \"Nero SoundTrax Help 3D Image Commander 2.20 7-Zip 9.38 (x64 edition) Adobe AIR Adobe Bridge 1.0 Adobe Common File Installer Adobe Flash Player 16 ActiveX Adobe Flash Player 17 NPAPI Adobe Reader XI (11.0.09) - Nederlands Adobe Reader XI (11.0.10) Adobe Shockwave Player 12.0 Adobe Stock Photos 1.0 Advertising Center AnVir Task Manager Pro AnvSoft Photo Slideshow Maker Professional 5.56 Ashampoo Slideshow Studio 2013 v.1.0.2 Ashampoo Snap 7 v.7.0.10 Audio Record Wizard AVG 2014 BitTorrent Blue Jet Button versie 2.2.0.2 Bonjour BusinessCards MX Button Shop 4 Canon MP Navigator EX 1.0 Canon MP520 series Canon My Printer Canon Utilities Easy-PhotoPrint EX Canon Utilities Solution Menu Cartoon Recorder 3.5 CCleaner CDisplay 1.8 ConvertXtoDVD 4.1.10.348 Cool Timer 5.2.1.9 Creative Pack Volume 1 Cute Reminder Enterprise Edition 2.6 CyberLink PhotoDirector 5 CyberLink Power2Go CyberLink PowerDVD 10 CyberLink YouCam D3DX10 Dazzle Video Capture DVC100 X64 Driver 1.07 Defraggler Dell Touchpad DolbyFiles DP Animation Maker Dropbox Easy File Share Easy Flyer Creator 3.0 Easy Migration Easy Settings Easy Support Center EasyTune version 1.2.3 Facebook Video Calling 2.0.0.447 Filmmaker's Toolkit for Studio FolderIco 3.0 Gebruikersregistratie voor Canon MP520 series Genesys USB Mass Storage Device Genie Timeline GetDiz 3.0 GIMP 2.8.14 Glary Utilities PRO 5.25 Google Chrome Google Earth Google Update Helper Google+ Auto Backup Hollywood FX Volumes 1-3 iCare Data Recovery 5.3 ImagXpress Inpaint 6.0 InstantPhotoSketch Pro 2.1 Intel(R) Driver Update Utility 2.0 Intel(R) Manageability Engine Firmware Recovery Agent Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) Rapid Storage Technology Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel(R) USB 3.0 eXtensible Host Controller Driver Intel(R) WiDi Intel(R) Wireless Bluetooth(R)(patch version 17.1.1449.356) Intel© Driver Update Utility Intel© PROSet/Wireless Software Intel© Trusted Connect Service Client iPixSoft Flash Gallery Factory (1.6.0.0) Java 8 Update 45 Java Auto Updater K-Lite Codec Pack 10.7.1 Full KC Softwares AudioGrail Kvisoft Flash Video Gallery 1.5.6 Leawo Total Media Converter Ultimate version 7.2.1.4 Lernout & Hauspie TruVoice American English TTS Engine Light Image Resizer 4.7.0.0 Macrium Reflect Free Edition Malwarebytes Anti-Malware versie 2.0.4.1028 Menu Templates - Starter Kit MergeModule_x64 MergeModule_x86 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.5.2 (Nederlands) Microsoft .NET Framework 4.5.2 (NLD) Microsoft Application Error Reporting Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Motion Graphics Toolkit for Studio Movie Templates - Starter Kit Mozilla Firefox 37.0.2 (x86 nl) Mozilla Maintenance Service MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Multimedia POP MyPhoneExplorer Nero 9 Nero Burning ROM Help Nero BurnRights Nero BurnRights Help Nero ControlCenter Nero CoverDesigner Nero CoverDesigner Help Nero Disc Copy Gadget Nero Disc Copy Gadget Help Nero DiscSpeed Nero DiscSpeed Help Nero DriveSpeed Nero DriveSpeed Help Nero Express Help Nero InfoTool Nero InfoTool Help Nero Installer Nero Live Nero Live Help Nero PhotoSnap Nero PhotoSnap Help Nero Recode Nero Recode Help Nero Rescue Agent Nero RescueAgent Help Nero ShowTime Nero StartSmart Nero StartSmart Help Nero Vision Nero Vision Help Nero WaveEditor NeroBurningROM NeroExpress NeroLiveGadget NeroLiveGadget Help neroxml NewBlue Effects NextUp-ScanSoft Claire Netherlands Dutch Voice NVIDIA-configuratiescherm 327.02 NVIDIA Grafisch stuurprogramma 327.02 NVIDIA Install Application NVIDIA Optimus 1.14.17 NVIDIA PhysX NVIDIA Update 1.14.17 NVIDIA Update Components Open SSL for PopTrayU Pando Media Booster Photo Story 3 voor Windows Photo 3D ScreenSaver 1.2 Photo Editor 1.1 Picasa 3 Pinnacle MyDVD Pinnacle Studio 18 - Install Manager Pinnacle Studio 18 Pinnacle Studio 18 Add-Ons PIXMA Extended Survey Program PlayMemories Home PMB_ModeEditor PMB_ServiceUploader PopTrayU 5.0 (beta 12) PowerISO Premium Pack Volumes 1-2 Prerequirements Presto ImageFolio 4 PrivaZer Process Lasso Project Dogwaffle Howler version 8.2 Race Cars - The Extreme Rally Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Realtek PC Camera Replay Music 5 Retouch Pilot Free 3.5.3 Revo Uninstaller Pro 3.0.2 RonyaSoft Poster Designer (Poster Forge) 2.02 S Agent Samsung Kies Samsung Kies3 Samsung Recovery Solution 5 Samsung Story Album Viewer Sandboxie 4.16 (64-bit) ScanSoft OmniPage SE 4 ScoreFitter Volumes 1-2 Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4.5.2 (KB3023224) Security Update for Microsoft .NET Framework 4.5.2 (KB3035490) Security Update for Microsoft .NET Framework 4.5.2 (KB3037581) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2883029) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2920795) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2965282) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2956106) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2965210) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2956103) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2899580) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2965284) 32-Bit Edition SilverFast 8.2.0r3 (64bit) Skype Web Plugin SkypeT 7.4 Software Launcher Sothink Flash Menu SoundTrax Speccy Spotify SUPERAntiSpyware SW Update swMSM Synaptics Pointing Device Driver TeoreX.Inpaint.6.0 6.0 ThunderSoft Flash Gallery Creator (1.8.3.0) ThunderSoft Slideshow Factory (3.5.1.0) Title Extreme TTSReader 1.30 Unity Web Player Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2920794) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2986252) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) User Guide Visual Studio 2008 x64 Redistributables Visual Studio 2010 x64 Redistributables Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player Web Page Maker V3.21 Webcam 2080 series Windows Media Player Firefox Plugin WinX Free VOB to AVI Converter 5.0.6 Wise Auto Shutdown 1.44 Xara3D6 Zoner GIF Animator 5 ==== Running Processes ====================== C:\Program Files (x86)\AVG\AVG2014\avgfws.exe C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe C:\Program Files (x86)\Bonjour\mDNSResponder.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\AnVir Task Manager Pro\AnVir.exe C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe C:\Users\Patrick\AppData\Roaming\Spotify\SpotifyWebHelper.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe C:\Program Files\Sandboxie\32\SbieSvc.exe C:\Program Files (x86)\Blue Jet Button\bjb.exe C:\Program Files (x86)\CuteReminderEnterprise\CuteReminder.exe C:\Program Files (x86)\PopTrayU\PopTrayU.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Users\Patrick\Desktop\zoek.exe C:\windows\SysWOW64\cmd.exe C:\windows\SysWOW64\cmd.exe C:\windows\SysWOW64\cmd.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\xhyfxjma.default user.js not found ---- Lines foxlingo removed from prefs.js ---- user_pref("browser.uiCustomization.state", "{\"placements\":{\"PanelUI-contents\":[\"edit-controls\",\"new-window-button\",\"privatebrowsing-button\", user_pref("extensions.foxlingo.addit.isPrinterAvailable", true); user_pref("extensions.foxlingo.addit.isShowHelpUs", false); user_pref("extensions.foxlingo.uninstallFormShown", false); user_pref("foxlingo.clientfflocale", "nl-undefined"); user_pref("foxlingo.clientipaddress", "84.196.200.97"); user_pref("foxlingo.dutch-langto", true); user_pref("foxlingo.firsttimetranslatedsearch", false); user_pref("foxlingo.foundipcountry", "BE"); user_pref("foxlingo.french-langto", true); user_pref("foxlingo.fulllogo", false); user_pref("foxlingo.gSessionId", "5ab03c23-e27b-481f-6d70-8fcb9da5559a"); user_pref("foxlingo.installed", true); user_pref("foxlingo.isShowAfterDownloadPage", false); user_pref("foxlingo.isShowInstaller", false); user_pref("foxlingo.isfrommozilla", true); user_pref("foxlingo.options-dlang", "dutch"); user_pref("foxlingo.tempdlang", "dutch"); user_pref("foxlingo.toggleall-langfrom", true); user_pref("foxlingo.translatedsearchlangfrom", "dutch"); user_pref("foxlingo.user_id", "VslMVch6-8xoK-v7D4-GRA0-4FHA-dTVccvFpivSD"); user_pref("foxlingo.version", "2.7.8"); ---- Lines extensions.9iOPgTaGBJehkkEl removed from prefs.js ---- user_pref("extensions.9iOPgTaGBJehkkEl.epoch", "1426674382"); user_pref("extensions.9iOPgTaGBJehkkEl.url", "http://superiend.org/sync2/?q=hfZ9oe4MhyhHhdUMCyVUojsGpdCHtMqLDe49CNU0nUkMCMlNhd9FqjaHrjCFrds8rTrMBzqUoj ---- Lines extensions.IwZstgpIKMDd5geA removed from prefs.js ---- user_pref("extensions.IwZstgpIKMDd5geA.epoch", "1426674195"); ---- Lines extensions.XLjFsLctmLaZDC8B removed from prefs.js ---- user_pref("extensions.XLjFsLctmLaZDC8B.epoch", "1426674479"); user_pref("extensions.XLjFsLctmLaZDC8B.url", "http://bloggerpixieusa.info/sync2/?q=hfZ9oe4MhyhHhdUMCyVUojsGpdCHtMqLDe49CNU0nUkMCMlNhd9FqjaHrjCFrds6rTn ---- Lines extensions.YpEFgFCd5YWnzgtD removed from prefs.js ---- user_pref("extensions.YpEFgFCd5YWnzgtD.epoch", "1426674196"); user_pref("extensions.YpEFgFCd5YWnzgtD.url", "http://storageinstallbardirectory.in/sync2/?q=hfZ9oe4MhyhHhdUMCyVUojsGpdCHtMqLDe49CNU0nUkMCMlNhd9FqjaHrj ---- Lines extensions.juXqZLNI0ORploTY removed from prefs.js ---- user_pref("extensions.juXqZLNI0ORploTY.epoch", "1426674381"); user_pref("extensions.juXqZLNI0ORploTY.url", "http://firsttshare.us/sync2/?q=hfZ9ofV9CShEAen0rTs5qHrMg708BNmGWj8cmihGheDUojw8rdrFqHwErTk9rihIC7n0rjkEr ---- FireFox user.js and prefs.js backups ---- prefs_20151505_1003_.backup ProfilePath: C:\Users\Patrick\AppData\Roaming\TomTom\HOME\Profiles\a0rb66g0.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20151505_1003_.backup ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Softland not found C:\Users\Patrick\AppData\Roaming\PATRICK-PC.MTBF.txt deleted C:\Users\Patrick\AppData\Roaming\ReplayMusicLog.log deleted C:\PROGRA~3\Package Cache deleted C:\Users\Patrick\AppData\Local\cache deleted C:\Users\Patrick\AppData\Local\CrashRpt deleted C:\windows\SysNative\config\systemprofile\Searches deleted C:\windows\SysWow64\AI_RecycleBin deleted "C:\ProgramData\T23J7" deleted "C:\ProgramData\V93GE" deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 8088 MB CPU Info: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz CPU Speed: 2326,0 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | NVIDIA GeForce GT 650M | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1280 X 720 - 32 bit Network: Network Present Network Adapters: Bluetooth-apparaat (Personal Area Network) #3 | Microsoft Virtual WiFi Miniport Adapter | Intel(R) Centrino(R) Advanced-N 6235 | Realtek PCIe GBE Family Controller #2 CD / DVD Drives: 1x (E: | ) E: SlimtypeDVD A DS8A8SH Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 906,5GB | D: 758,2GB | F: 931,3GB | Z: 173,3GB Hard Disks - Free: C: 761,3GB | D: 425,5GB | F: 587,1GB | Z: 97,2GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 06/17/14 | SECCSD - 1072009 Time Zone: Romance (standaardtijd) Motherboard *: SAMSUNG ELECTRONICS CO., LTD. SAMSUNG_NP1234567890 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: AVG Internet Security 2014 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG Internet Security 2014 disabled (Outdated) Firewall: AVG Internet Security 2014 disabled Default Browser: Firefox 37.0.2 Internet Explorer Version: 11.0.9600.17801 Mozilla Firefox version: 33.1 (x86 nl) Mozilla Firefox version: 37.0.2 (x86 nl) Google Chrome version: 41.0.2272.101 Adobe Reader version: 11.0.10.32 Sun Java version: 1.8.0_45 (32-bit) Sun Java version: 1.8.0_45 (64-bit) Flash Player version: 17.0.0.169 Shockwave Player version: 12.0.3r133 ==== Files Recently Created / Modified ====================== ====== C:\windows ==== ====== C:\Users\Patrick\AppData\Local\Temp ==== 2015-05-13 14:56:00 688EB8EEB9AE3776F369453723708C5F 5845224 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\setup.exe 2015-05-13 14:55:59 B5776B81BAD8541B4428223587BE3285 2436608 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\DVD_10\Pinnacle MyDVD.msi 2015-05-13 14:55:59 342F79337765760AD4E392EB67D5ED2C 2585872 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\INSNTMSI.EXE 2015-05-13 14:55:56 E4E85CC6EA6F57A8B05A15ACF9824DD1 1003440 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\DOTNETFX_45\dotNetFx45_Full_setup.exe 2015-05-13 14:55:56 B5E0E70734498EF2BB86DAF555630BA0 191712 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\DVD_10\BIN\rsl.dll 2015-05-13 14:55:56 B5E0E70734498EF2BB86DAF555630BA0 191712 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\BIN\rsl.dll 2015-05-13 14:55:56 342F79337765760AD4E392EB67D5ED2C 2585872 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\DOTNETFX_45\INSNTMSI.EXE ====== Java Cache ===== 2015-05-06 13:10:39 21F03CEBBDB548D1B80AF59EB9E759B1 9090 ----a-w- C:\Users\Patrick\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\1bc56dd7-4868fd94 2015-05-06 13:10:38 E300CFCD7733719ECC0B9B83DDB0BCB6 38 ----a-w- C:\Users\Patrick\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\39cb023a-6b2a11ba7dbcfd89d7653d5381ea3d6b66da33632848119faea404cd4dd6876d-6.0.lap ====== C:\windows\SysWOW64 ===== 2015-05-13 13:04:51 858EB73F68B20A2A5C66B6C000D1C0DD 102608 ----a-w- C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 13:02:12 CFCB89C0FE8EF502A7934C0D20E5DBD6 76288 ----a-w- C:\windows\SysWOW64\mshtmled.dll 2015-05-13 13:02:12 C3120D99E6DA7878A1DD2D88138AC60A 30720 ----a-w- C:\windows\SysWOW64\iernonce.dll 2015-05-13 13:02:12 9025CA7BCD6B7956366FC90B3D6E3933 47616 ----a-w- C:\windows\SysWOW64\ieetwproxystub.dll 2015-05-13 13:02:11 C1A32612710492D0C3339E46EC15E333 504320 ----a-w- C:\windows\SysWOW64\vbscript.dll 2015-05-13 13:02:11 AA2F2D55DEF98007839D0189D721D70B 1310208 ----a-w- C:\windows\SysWOW64\urlmon.dll 2015-05-13 13:02:11 8C00AB01B1BC1E2F69765776BBC5A5D1 64000 ----a-w- C:\windows\SysWOW64\MshtmlDac.dll 2015-05-13 13:02:11 746BBC86351D07859D8B40056447F7B2 60416 ----a-w- C:\windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-05-13 13:02:11 6388FC82897DDDA607BBE3580D75AE15 342736 ----a-w- C:\windows\SysWOW64\iedkcs32.dll 2015-05-13 13:02:10 D74445161E58644309F858342F5E265C 19691008 ----a-w- C:\windows\SysWOW64\mshtml.dll 2015-05-13 13:02:10 C2EB0AA5570CF8BC881B36EE55A59337 688640 ----a-w- C:\windows\SysWOW64\msfeeds.dll 2015-05-13 13:02:10 7B4FA4B41FBDBB12C5038FCB6E6652AA 285696 ----a-w- C:\windows\SysWOW64\dxtrans.dll 2015-05-13 13:02:10 28313FF0DE83EAD8F5EF1B963D9078C3 2724864 ----a-w- C:\windows\SysWOW64\mshtml.tlb 2015-05-13 13:02:09 F2DB87F164BC13AB8EF90FBF5D866B65 664576 ----a-w- C:\windows\SysWOW64\jscript.dll 2015-05-13 13:02:09 E993B5E929F46A52E9F4EB68A7855CDF 62464 ----a-w- C:\windows\SysWOW64\iesetup.dll 2015-05-13 13:02:09 CC4974FCF9387F32A0FF87BCE093A5AD 620032 ----a-w- C:\windows\SysWOW64\jscript9diag.dll 2015-05-13 13:02:09 C525258A00ECFB4CE089F54C163268C3 2278400 ----a-w- C:\windows\SysWOW64\iertutil.dll 2015-05-13 13:02:09 BCFA71A878903B5F92A7AFEFCCC5CA97 478208 ----a-w- C:\windows\SysWOW64\ieui.dll 2015-05-13 13:02:09 63A2E3E9C771B1D4D7D84942D6FCB661 710144 ----a-w- C:\windows\SysWOW64\ieapfltr.dll 2015-05-13 13:02:09 5AAC24BF6C4A54DA526CC6244DEBE227 418304 ----a-w- C:\windows\SysWOW64\dxtmsft.dll 2015-05-13 13:02:09 3CE5DE0730C22A54FE783DB8A989E8BD 47104 ----a-w- C:\windows\SysWOW64\jsproxy.dll 2015-05-13 13:02:09 1BBC9CFD29A62D80FB77BB69BFF7513C 115712 ----a-w- C:\windows\SysWOW64\ieUnatt.exe 2015-05-13 13:02:09 136687227F11CE928CB05F4FD90319AC 2052608 ----a-w- C:\windows\SysWOW64\inetcpl.cpl 2015-05-13 13:02:09 0E22CD36FC3292CB812CC46CBCFD8444 12828672 ----a-w- C:\windows\SysWOW64\ieframe.dll 2015-05-13 13:02:07 CB5F450D21B9D76B7F01D006E4AEDB40 1882112 ----a-w- C:\windows\SysWOW64\wininet.dll 2015-05-13 13:02:07 6E2B4875B968324E5844F35A37A79260 4305920 ----a-w- C:\windows\SysWOW64\jscript9.dll 2015-05-13 13:02:07 37625FC1DAF886F1980E2D8F315B93AC 168960 ----a-w- C:\windows\SysWOW64\msrating.dll 2015-05-13 13:02:07 1C5C5B5EF9CFDFC897D4549A2385DB3A 1155072 ----a-w- C:\windows\SysWOW64\mshtmlmedia.dll 2015-05-13 13:02:07 07E82A31808C8BC053D1DE547082C58F 341504 ----a-w- C:\windows\SysWOW64\html.iec 2015-05-13 13:01:36 8D50ED3F0FBE3590AB0D43BF7B60E57A 3989440 ----a-w- C:\windows\SysWOW64\ntkrnlpa.exe 2015-05-13 13:01:35 0A66C88B087249742381924AB8F9EFCC 3934144 ----a-w- C:\windows\SysWOW64\ntoskrnl.exe 2015-05-13 13:01:33 D0F574320615303ADECDCB452EBB8930 635392 ----a-w- C:\windows\SysWOW64\tdh.dll 2015-05-13 13:01:29 A44680B810977EA64E280523E96F2EA9 1310744 ----a-w- C:\windows\SysWOW64\ntdll.dll 2015-05-13 13:01:27 EB058143B57ED460AC4F2DFBA104BBFF 364544 ----a-w- C:\windows\SysWOW64\tracerpt.exe 2015-05-13 13:01:27 7A5824DC9A85FCE4334F57FF0795853E 641536 ----a-w- C:\windows\SysWOW64\advapi32.dll 2015-05-13 13:01:27 1569F20BB9DB9FDC87A6D3C8A3726ABF 1114112 ----a-w- C:\windows\SysWOW64\kernel32.dll 2015-05-13 13:01:26 C6D2D384B6232B0B800234C03C50979F 82944 ----a-w- C:\windows\SysWOW64\logman.exe 2015-05-13 13:01:26 8C45A65ED20B487085B79EEFCC08D160 92160 ----a-w- C:\windows\SysWOW64\sechost.dll 2015-05-13 13:01:26 66D6A06936088E412E29A182679F0D71 259584 ----a-w- C:\windows\SysWOW64\msv1_0.dll 2015-05-13 13:01:26 54A01CC4BC47B31C5CD082D064AB37BC 550912 ----a-w- C:\windows\SysWOW64\kerberos.dll 2015-05-13 13:01:25 850F756363237A2EB069B9B25EF8BEC3 172032 ----a-w- C:\windows\SysWOW64\wdigest.dll 2015-05-13 13:01:25 7F99900705E249E9D5C55E490B7D076E 274944 ----a-w- C:\windows\SysWOW64\KernelBase.dll 2015-05-13 13:01:25 0B6E937863837BA3383E9CE9200DDF1E 221184 ----a-w- C:\windows\SysWOW64\ncrypt.dll 2015-05-13 13:01:24 74C0EC1257698176E288DA282F318E1C 40448 ----a-w- C:\windows\SysWOW64\typeperf.exe 2015-05-13 13:01:23 FCB1C8345C794FE89ABA03B4CA3131BB 65536 ----a-w- C:\windows\SysWOW64\TSpkg.dll 2015-05-13 13:01:22 97B30711DC6CA0EA4EACEDCE8080A3B4 37888 ----a-w- C:\windows\SysWOW64\relog.exe 2015-05-13 13:01:18 D9E25B4BD2120CC5183CCCE9421C7AFE 25600 ----a-w- C:\windows\SysWOW64\setup16.exe 2015-05-13 13:01:18 AFFE5747054D03F8CEE18A8518A9AA34 50176 ----a-w- C:\windows\SysWOW64\auditpol.exe 2015-05-13 13:01:16 F286528898342F0F1EB402606750C391 17408 ----a-w- C:\windows\SysWOW64\diskperf.exe 2015-05-13 13:01:16 ABA025664F9F42C568B2C022AADCB18F 43008 ----a-w- C:\windows\SysWOW64\srclient.dll 2015-05-13 13:01:15 99A508910BB06DFBE99D9AF7D6B4E950 22016 ----a-w- C:\windows\SysWOW64\secur32.dll 2015-05-13 13:01:15 79AF005633B7E41B7A194A7E7B9D3D93 17408 ----a-w- C:\windows\SysWOW64\credssp.dll 2015-05-13 13:01:15 741DB93796E7D4F3F804C13537FB40F4 96768 ----a-w- C:\windows\SysWOW64\sspicli.dll 2015-05-13 13:01:15 6BB13D5E12C5C4D829C1D640DF269EA0 5120 ----a-w- C:\windows\SysWOW64\wow32.dll 2015-05-13 13:01:15 3346701038E55BD366F3D5CE31F55483 14336 ----a-w- C:\windows\SysWOW64\ntvdm64.dll 2015-05-13 13:01:14 F43CB86F9536B17E5C7CFCFB48ACBE54 7680 ----a-w- C:\windows\SysWOW64\instnm.exe 2015-05-13 13:01:13 D9716B488CC27652C12B1B5E0944987E 2048 ----a-w- C:\windows\SysWOW64\user.exe 2015-05-13 13:01:13 D079A408CC3E22A09D1260A6F18FC0FD 146432 ----a-w- C:\windows\SysWOW64\msaudite.dll 2015-05-13 13:01:13 9638DA21E965E23C85C4319F3F66D824 6656 ----a-w- C:\windows\SysWOW64\apisetschema.dll 2015-05-13 13:01:13 86B2AC15999BB4F8B5C84AB6154A1783 686080 ----a-w- C:\windows\SysWOW64\adtschema.dll 2015-05-13 13:01:12 BF9BB4113E9FCDABD4C703DDD06293F3 60416 ----a-w- C:\windows\SysWOW64\msobjs.dll 2015-05-13 13:00:51 D0CA74BE380498A0111A73EB9C76CF8F 342016 ----a-w- C:\windows\SysWOW64\certcli.dll 2015-05-13 13:00:51 2665A3D34D1C62DF303723422215B001 248832 ----a-w- C:\windows\SysWOW64\schannel.dll 2015-05-13 13:00:32 C22AB1781BC6F0BB1C9B352CF66DBFFC 1250816 ----a-w- C:\windows\SysWOW64\DWrite.dll 2015-05-13 13:00:29 744AB3C1A73A57DEED49D631F1BDEA1D 2311168 ----a-w- C:\windows\SysWOW64\wpdshext.dll 2015-05-13 13:00:26 418AEC0CE89A13200F2820079B9CDFD9 216064 ----a-w- C:\windows\SysWOW64\InkEd.dll 2015-05-13 13:00:24 C489D8B4D8C64F20CC75A93F541F7D91 123904 ----a-w- C:\windows\SysWOW64\poqexec.exe 2015-05-13 12:56:48 DCA2C6E7990771209CDD8E9DA90ED0E2 5120 ----a-w- C:\windows\SysWOW64\shimeng.dll 2015-05-13 12:56:48 D3E8C7FADB758E5D222C639CC65790AD 295936 ----a-w- C:\windows\SysWOW64\apphelp.dll 2015-05-13 12:56:48 715C060150D969B0DE5DD5B365A712AF 20992 ----a-w- C:\windows\SysWOW64\sdbinst.exe ====== C:\windows\SysWOW64\drivers ===== ====== C:\windows\Sysnative ===== 2015-05-13 13:04:51 189FB45D7442083AE8A2E4E612233EF7 124112 ----a-w- C:\windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 13:02:12 E802824B9B4A16355A5233A7B8215ECE 48640 ----a-w- C:\windows\Sysnative\ieetwproxystub.dll 2015-05-13 13:02:12 9DCD15027A13195ABA68B40A5EB26691 114688 ----a-w- C:\windows\Sysnative\ieetwcollector.exe 2015-05-13 13:02:11 70EDB996FE1BCB699232A15CB0D0FA32 2724864 ----a-w- C:\windows\Sysnative\mshtml.tlb 2015-05-13 13:02:11 6D2787CD32595A91969502A399E7BA48 77824 ----a-w- C:\windows\Sysnative\JavaScriptCollectionAgent.dll 2015-05-13 13:02:11 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\windows\Sysnative\ie4uinit.exe 2015-05-13 13:02:11 1122DD841CCB7E07EF41039CBD66A29E 34304 ----a-w- C:\windows\Sysnative\iernonce.dll 2015-05-13 13:02:09 ED4EB5A0CDD251A17B946C515CB94D70 1547264 ----a-w- C:\windows\Sysnative\urlmon.dll 2015-05-13 13:02:09 EB9FCD39D65E23380CB2C2F0E6F2ED53 316928 ----a-w- C:\windows\Sysnative\dxtrans.dll 2015-05-13 13:02:09 E20B5098C8707B2CF0858024568234FF 801280 ----a-w- C:\windows\Sysnative\msfeeds.dll 2015-05-13 13:02:09 D7B9EEF960F68DC18724BB5F89A464DD 389840 ----a-w- C:\windows\Sysnative\iedkcs32.dll 2015-05-13 13:02:09 2A2CDE78F9E9019AD0E4D804A02688A3 968704 ----a-w- C:\windows\Sysnative\MsSpellCheckingFacility.exe 2015-05-13 13:02:09 010F562B961AB8CAEC7A0C72F8FDD690 4096 ----a-w- C:\windows\Sysnative\ieetwcollectorres.dll 2015-05-13 13:02:08 F918BE3C5ACA0B6485D725CC1A5348DC 2125824 ----a-w- C:\windows\Sysnative\inetcpl.cpl 2015-05-13 13:02:08 F28577138120BA7E5423820D4B4C4727 66560 ----a-w- C:\windows\Sysnative\iesetup.dll 2015-05-13 13:02:08 843D063E75B19188759CBEC82828BCB1 2885120 ----a-w- C:\windows\Sysnative\iertutil.dll 2015-05-13 13:02:08 49B1935F131A44CD29857D6900CB643F 800768 ----a-w- C:\windows\Sysnative\ieapfltr.dll 2015-05-13 13:02:07 E061B5A1D0F9BBACA41149201ADF4A3B 14401536 ----a-w- C:\windows\Sysnative\ieframe.dll 2015-05-13 13:02:07 CA0369799519F33DDE8FD26F5D87D014 490496 ----a-w- C:\windows\Sysnative\dxtmsft.dll 2015-05-13 13:02:07 B85ECB91C88F6E74045061B7F7DDEFA2 584192 ----a-w- C:\windows\Sysnative\vbscript.dll 2015-05-13 13:02:07 29BBA65402DD568F49C837533F269482 144384 ----a-w- C:\windows\Sysnative\ieUnatt.exe 2015-05-13 13:02:07 1D610F215769E4FF56C7B1847DE4B86D 633856 ----a-w- C:\windows\Sysnative\ieui.dll 2015-05-13 13:02:07 0B4E78E6E65D1FD2CE55C93CF1EFD623 54784 ----a-w- C:\windows\Sysnative\jsproxy.dll 2015-05-13 13:02:05 FFC30231459FC44FD73E07532C707791 1359360 ----a-w- C:\windows\Sysnative\mshtmlmedia.dll 2015-05-13 13:02:05 F0289B3A341429117696F0279DA977B6 2352128 ----a-w- C:\windows\Sysnative\wininet.dll 2015-05-13 13:02:05 DC1200D3C3AC1E69A4DAD053BC26BF0D 814080 ----a-w- C:\windows\Sysnative\jscript9diag.dll 2015-05-13 13:02:05 C1D6BD834E69E8F77C8B4DDFCEE073F6 417792 ----a-w- C:\windows\Sysnative\html.iec 2015-05-13 13:02:05 79A4C71CD8B610DE9F66B72B5654C450 6025728 ----a-w- C:\windows\Sysnative\jscript9.dll 2015-05-13 13:02:05 63061A0826839DE8F5B4713976C99F1B 816640 ----a-w- C:\windows\Sysnative\jscript.dll 2015-05-13 13:02:05 1921A72BF1273BED72E569EF1F1A0611 92160 ----a-w- C:\windows\Sysnative\mshtmled.dll 2015-05-13 13:02:04 F2A1718334172C0F4E231E998F6CB8AB 199680 ----a-w- C:\windows\Sysnative\msrating.dll 2015-05-13 13:02:04 C31D57F7A58FACDA2671075CEBA75199 24971776 ----a-w- C:\windows\Sysnative\mshtml.dll 2015-05-13 13:02:04 5A18ACE782C215300BE1C82D9EDC565B 88064 ----a-w- C:\windows\Sysnative\MshtmlDac.dll 2015-05-13 13:01:39 EA8A3E8C674B03CB4AFA1D344DBD7BC1 1254400 ----a-w- C:\windows\Sysnative\diagtrack.dll 2015-05-13 13:01:39 D449C36379EBEFD3CCDAEC328002BB5B 36864 ----a-w- C:\windows\Sysnative\UtcResources.dll 2015-05-13 13:01:38 A985325F4FE72FB003749A2FBBA9952E 5569984 ----a-w- C:\windows\Sysnative\ntoskrnl.exe 2015-05-13 13:01:37 8453010B6512DAEAFC61CC0836FA137E 1728960 ----a-w- C:\windows\Sysnative\ntdll.dll 2015-05-13 13:01:34 10D39E74B0D5011A8C199B9646579C3F 879104 ----a-w- C:\windows\Sysnative\tdh.dll 2015-05-13 13:01:33 B01B21E15671ACD3F0AD131DC4CABFC7 879104 ----a-w- C:\windows\Sysnative\advapi32.dll 2015-05-13 13:01:30 1C9F2F4A2C603739BD8CC8C64310AFD7 1162752 ----a-w- C:\windows\Sysnative\kernel32.dll 2015-05-13 13:01:28 DA8B541825991F6699790E617FF0FF60 1461760 ----a-w- C:\windows\Sysnative\lsasrv.dll 2015-05-13 13:01:28 408A8232E84515E4AA819E0C95E65257 314880 ----a-w- C:\windows\Sysnative\msv1_0.dll 2015-05-13 13:01:27 FDF1E0FD74DED0034BA6FFB665E0641E 424448 ----a-w- C:\windows\Sysnative\KernelBase.dll 2015-05-13 13:01:27 EE27E1D639E3807229C15AF94320CF0A 404992 ----a-w- C:\windows\Sysnative\tracerpt.exe 2015-05-13 13:01:27 A0BCD6A64281492EFAE02AC144A335F1 243712 ----a-w- C:\windows\Sysnative\wow64.dll 2015-05-13 13:01:26 E55A72876BC5E244D0A8F7F07862A939 338432 ----a-w- C:\windows\Sysnative\conhost.exe 2015-05-13 13:01:26 D17DD01601460F5899E5C154B3FD0BFA 215040 ----a-w- C:\windows\Sysnative\winsrv.dll 2015-05-13 13:01:26 CCAB9BE9C9100C5F54A5A8F355730841 728064 ----a-w- C:\windows\Sysnative\kerberos.dll 2015-05-13 13:01:26 9C5DBA74D0C641C2A4ABDC79969B7BEF 104448 ----a-w- C:\windows\Sysnative\logman.exe 2015-05-13 13:01:26 52935C072F8D5A92508AA3A3CC9133C7 296960 ----a-w- C:\windows\Sysnative\rstrui.exe 2015-05-13 13:01:26 52146DBFE253B83FAB1980AA704C7974 113664 ----a-w- C:\windows\Sysnative\sechost.dll 2015-05-13 13:01:26 0CD609B1143961F5C3BA691729A6A5DA 503808 ----a-w- C:\windows\Sysnative\srcore.dll 2015-05-13 13:01:25 FE60A67032A5C94F6ACE483C8FE84105 47104 ----a-w- C:\windows\Sysnative\typeperf.exe 2015-05-13 13:01:25 DA5EF2CC0764BE7097BAFA9CAF903FE8 112640 ----a-w- C:\windows\Sysnative\smss.exe 2015-05-13 13:01:25 CD3770C78AFFC223A3B9D38F27B7A309 309760 ----a-w- C:\windows\Sysnative\ncrypt.dll 2015-05-13 13:01:25 2292CD8500725B94B7D2E3C0C84F2D19 210944 ----a-w- C:\windows\Sysnative\wdigest.dll 2015-05-13 13:01:23 ACE24D86D2714FCC1639F890DF54951B 86528 ----a-w- C:\windows\Sysnative\TSpkg.dll 2015-05-13 13:01:23 79F036EB691ABBA84E8EB1715E5F2B17 43008 ----a-w- C:\windows\Sysnative\relog.exe 2015-05-13 13:01:23 40C5EA47D4AEC96249B09BF0C076A60C 136192 ----a-w- C:\windows\Sysnative\sspicli.dll 2015-05-13 13:01:22 9262D6E2C239EDD6D87B080F2BCCEC9F 31232 ----a-w- C:\windows\Sysnative\lsass.exe 2015-05-13 13:01:22 4DD0098FFAB4664DB979537C48AE055F 64000 ----a-w- C:\windows\Sysnative\auditpol.exe 2015-05-13 13:01:18 A3DCC3D8BB57E31EA07949313CC3A3CF 43520 ----a-w- C:\windows\Sysnative\csrsrv.dll 2015-05-13 13:01:16 E1B0C7042BA7B8903D60DF3885F2DFE7 16384 ----a-w- C:\windows\Sysnative\ntvdm64.dll 2015-05-13 13:01:16 BB7BAF9532DBA5AB4009E981687D1EA6 19456 ----a-w- C:\windows\Sysnative\diskperf.exe 2015-05-13 13:01:16 8C711AF30BE3991050D0D011D92CFBE0 50176 ----a-w- C:\windows\Sysnative\srclient.dll 2015-05-13 13:01:15 D2602AC48B38FA10956E32D18E7143B0 362496 ----a-w- C:\windows\Sysnative\wow64win.dll 2015-05-13 13:01:15 D205305FB0E352A9D4CF922D6A016BF4 13312 ----a-w- C:\windows\Sysnative\wow64cpu.dll 2015-05-13 13:01:15 ADC2D7B5BFF277E5A9FACE6A21A24ABC 29184 ----a-w- C:\windows\Sysnative\sspisrv.dll 2015-05-13 13:01:15 50EBA6640805F6D5EF4A0DCEF2D180AB 22016 ----a-w- C:\windows\Sysnative\credssp.dll 2015-05-13 13:01:15 0D9BDBE780DD81757AC5AF87E8B1EBEC 28160 ----a-w- C:\windows\Sysnative\secur32.dll 2015-05-13 13:01:13 AF278DB00C43E925E58C8CA2C0CF4C71 686080 ----a-w- C:\windows\Sysnative\adtschema.dll 2015-05-13 13:01:13 90293AAC2AB0908BFF98ADB89CEBC931 6656 ----a-w- C:\windows\Sysnative\apisetschema.dll 2015-05-13 13:01:13 7A448B8CED7F7348C36159D5CC8E19ED 146432 ----a-w- C:\windows\Sysnative\msaudite.dll 2015-05-13 13:01:12 90DC7B112F946B412C9CDC6F459F4053 60416 ----a-w- C:\windows\Sysnative\msobjs.dll 2015-05-13 13:00:51 ED4B980701D081AC42F7B121C1E42149 460800 ----a-w- C:\windows\Sysnative\certcli.dll 2015-05-13 13:00:51 8AD8D17425C75D2621B2CDFE0DEABD21 342016 ----a-w- C:\windows\Sysnative\schannel.dll 2015-05-13 13:00:33 E612E86FA15EA1EF9A52433A2743C447 1179136 ----a-w- C:\windows\Sysnative\FntCache.dll 2015-05-13 13:00:32 D858C33B133740D5F1F1CF71C33F6355 3204608 ----a-w- C:\windows\Sysnative\win32k.sys 2015-05-13 13:00:32 490505F6E53EF046EC70A353BC9CD615 1647104 ----a-w- C:\windows\Sysnative\DWrite.dll 2015-05-13 13:00:30 E5404072A5A9E0B452ADDF1D1339176C 2543104 ----a-w- C:\windows\Sysnative\wpdshext.dll 2015-05-13 13:00:26 6B0F962B1EE486FFE7BCABBC9C736976 24576 ----a-w- C:\windows\Sysnative\jnwmon.dll 2015-05-13 13:00:26 2B36E0C5C262437E1B098344DEFA55F8 275456 ----a-w- C:\windows\Sysnative\InkEd.dll 2015-05-13 13:00:24 C7E50B04623FC6FF54EAF88938A8936E 142336 ----a-w- C:\windows\Sysnative\poqexec.exe 2015-05-13 13:00:23 71C85477DF9347FE8E7BC55768473FCA 328704 ----a-w- C:\windows\Sysnative\services.exe 2015-05-13 12:56:48 F55F287810AAF708618793764AF7D1BB 23552 ----a-w- C:\windows\Sysnative\sdbinst.exe 2015-05-13 12:56:48 83BFCCAC53795E8A5055A93672D0C46C 72192 ----a-w- C:\windows\Sysnative\aelupsvc.dll 2015-05-13 12:56:48 7E21D3072EB20D5400919D435D549A9B 6656 ----a-w- C:\windows\Sysnative\shimeng.dll 2015-05-13 12:56:48 31D260ADAF1CCFEFC49DB9FBCE9986DA 342016 ----a-w- C:\windows\Sysnative\apphelp.dll ====== C:\windows\Sysnative\drivers ===== 2015-05-13 13:01:26 F7DFAE6040AC910B7C64EE208A34157D 95680 ----a-w- C:\windows\Sysnative\drivers\ksecdd.sys 2015-05-13 13:01:26 8FE94F2EF9BF444E93E35D87E210D02F 155584 ----a-w- C:\windows\Sysnative\drivers\ksecpkg.sys 2015-04-16 17:07:15 F61634BEC53F73702A10DE69F6DCAF57 754688 ----a-w- C:\windows\Sysnative\drivers\http.sys ====== C:\windows\Tasks ====== 2015-05-14 08:45:19 EC37C75A6CCB5B1D69BE2035F166C9F5 3046 ----a-w- C:\windows\Sysnative\Tasks\AnVir Task Manager ====== C:\windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2015-05-13 15:01:36 -------- d-----w- C:\PROGRA~2\COMMON~1\Sonic Shared 2015-05-13 15:01:36 -------- d-----w- C:\PROGRA~2\COMMON~1\Roxio Shared 2015-05-13 15:01:35 -------- d-----w- C:\PROGRA~2\Pinnacle MyDVD 2015-05-05 19:14:36 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service ======= C: ===== ====== C:\Users\Patrick\AppData\Roaming ====== 2015-05-14 20:54:47 -------- d-----w- C:\windows\SysNative\config\systemprofile\AppData\Local\CrashDumps 2015-05-05 19:14:43 -------- d-----w- C:\Users\Patrick\AppData\Roaming\Mozilla 2015-05-05 19:14:43 -------- d-----w- C:\Users\Patrick\AppData\Local\Mozilla ====== C:\Users\Patrick ====== 2015-05-13 15:01:46 -------- d-----w- C:\ProgramData\Roxio 2015-05-13 14:56:00 -------- d-----w- C:\ProgramData\Roxio Log Files 2015-05-10 06:48:33 2E1D22AC30F4B392CEAF3D7D59BE3626 2204160 ----a-w- C:\Users\Patrick\Desktop\adwcleaner_4.203.exe 2015-05-05 18:34:37 -------- d-----w- C:\ProgramData\Sun ====== C: exe-files == 2015-05-14 20:52:31 7863EE723B4EF79EFF7D967787963607 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-3130560279-3158009234-3752583673-1001\$I0ZZF4K.exe 2015-05-14 20:47:09 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-3130560279-3158009234-3752583673-1001\$R0ZZF4K.exe 2015-05-13 15:01:58 688EB8EEB9AE3776F369453723708C5F 5845224 ----a-w- C:\ProgramData\Uninstall\{3F75C691-AC75-47C3-AD02-82CE9AE30FE3}\setup.exe 2015-05-13 14:56:00 688EB8EEB9AE3776F369453723708C5F 5845224 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\setup.exe 2015-05-13 14:55:59 342F79337765760AD4E392EB67D5ED2C 2585872 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\INSNTMSI.EXE 2015-05-13 14:55:56 E4E85CC6EA6F57A8B05A15ACF9824DD1 1003440 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\DOTNETFX_45\dotNetFx45_Full_setup.exe 2015-05-13 14:55:56 342F79337765760AD4E392EB67D5ED2C 2585872 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\DOTNETFX_45\INSNTMSI.EXE 2015-05-13 13:02:12 9DCD15027A13195ABA68B40A5EB26691 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-05-13 13:02:11 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-05-13 13:02:11 4B3D652AACEE4FE636F74CB8015BF00E 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2015-05-13 13:02:09 EC75F14CC85659C780A0DC575F7B1242 815304 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2015-05-13 13:02:09 A2A98DBD9E13B81AB68FB6A699A157CB 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2015-05-13 13:02:09 2AA6685FC67CDD231BA0345112DFEE89 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2015-05-13 13:02:09 2A2CDE78F9E9019AD0E4D804A02688A3 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2015-05-13 13:02:09 1BBC9CFD29A62D80FB77BB69BFF7513C 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-05-13 13:02:08 CDBB6EFC96D0567951A13A6ABDCA1FDE 484864 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2015-05-13 13:02:08 ABE6FDB01D22FD63BB190BF95F5BC9B6 813776 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2015-05-13 13:02:07 29BBA65402DD568F49C837533F269482 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-05-13 13:01:38 A985325F4FE72FB003749A2FBBA9952E 5569984 ----a-w- C:\Windows\System32\ntoskrnl.exe 2015-05-13 13:01:36 8D50ED3F0FBE3590AB0D43BF7B60E57A 3989440 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2015-05-13 13:01:35 0A66C88B087249742381924AB8F9EFCC 3934144 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2015-05-13 13:01:27 EE27E1D639E3807229C15AF94320CF0A 404992 ----a-w- C:\Windows\System32\tracerpt.exe 2015-05-13 13:01:27 EB058143B57ED460AC4F2DFBA104BBFF 364544 ----a-w- C:\Windows\SysWOW64\tracerpt.exe 2015-05-13 13:01:26 E55A72876BC5E244D0A8F7F07862A939 338432 ----a-w- C:\Windows\System32\conhost.exe 2015-05-13 13:01:26 C6D2D384B6232B0B800234C03C50979F 82944 ----a-w- C:\Windows\SysWOW64\logman.exe 2015-05-13 13:01:26 9C5DBA74D0C641C2A4ABDC79969B7BEF 104448 ----a-w- C:\Windows\System32\logman.exe 2015-05-13 13:01:26 52935C072F8D5A92508AA3A3CC9133C7 296960 ----a-w- C:\Windows\System32\rstrui.exe 2015-05-13 13:01:25 FE60A67032A5C94F6ACE483C8FE84105 47104 ----a-w- C:\Windows\System32\typeperf.exe 2015-05-13 13:01:25 DA5EF2CC0764BE7097BAFA9CAF903FE8 112640 ----a-w- C:\Windows\System32\smss.exe 2015-05-13 13:01:24 74C0EC1257698176E288DA282F318E1C 40448 ----a-w- C:\Windows\SysWOW64\typeperf.exe 2015-05-13 13:01:23 79F036EB691ABBA84E8EB1715E5F2B17 43008 ----a-w- C:\Windows\System32\relog.exe 2015-05-13 13:01:22 97B30711DC6CA0EA4EACEDCE8080A3B4 37888 ----a-w- C:\Windows\SysWOW64\relog.exe 2015-05-13 13:01:22 9262D6E2C239EDD6D87B080F2BCCEC9F 31232 ----a-w- C:\Windows\System32\lsass.exe 2015-05-13 13:01:22 4DD0098FFAB4664DB979537C48AE055F 64000 ----a-w- C:\Windows\System32\auditpol.exe 2015-05-13 13:01:18 D9E25B4BD2120CC5183CCCE9421C7AFE 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2015-05-13 13:01:18 AFFE5747054D03F8CEE18A8518A9AA34 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-05-13 13:01:16 F286528898342F0F1EB402606750C391 17408 ----a-w- C:\Windows\SysWOW64\diskperf.exe 2015-05-13 13:01:16 BB7BAF9532DBA5AB4009E981687D1EA6 19456 ----a-w- C:\Windows\System32\diskperf.exe 2015-05-13 13:01:14 F43CB86F9536B17E5C7CFCFB48ACBE54 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2015-05-13 13:01:13 D9716B488CC27652C12B1B5E0944987E 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2015-05-13 13:00:26 D5E35700566B225CBF8ECD7F92C460C8 2164224 ----a-w- C:\Program Files\Windows Journal\Journal.exe 2015-05-13 13:00:26 0DBC9BB05703CA0D8792E2075D62B3C3 51200 ----a-w- C:\Program Files\Windows Journal\PDIALOG.exe 2015-05-13 13:00:24 C7E50B04623FC6FF54EAF88938A8936E 142336 ----a-w- C:\Windows\System32\poqexec.exe 2015-05-13 13:00:24 C489D8B4D8C64F20CC75A93F541F7D91 123904 ----a-w- C:\Windows\SysWOW64\poqexec.exe 2015-05-13 13:00:23 71C85477DF9347FE8E7BC55768473FCA 328704 ----a-w- C:\Windows\System32\services.exe 2015-05-13 12:56:48 F55F287810AAF708618793764AF7D1BB 23552 ----a-w- C:\Windows\System32\sdbinst.exe 2015-05-13 12:56:48 715C060150D969B0DE5DD5B365A712AF 20992 ----a-w- C:\Windows\SysWOW64\sdbinst.exe 2015-05-11 15:50:46 E37EB755E4337385E644B7E07B277058 451616 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00007694\CoProc update.19567778.exe 2015-05-11 06:34:08 4FFE3AEDA99FD97821E9AAFBC4D4FDC6 22816 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x86\RegBootDefrag.exe 2015-05-11 06:34:06 00CF4EF55806408C5B17EE26D14AC498 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x86\BootDefrag.exe 2015-05-11 06:34:04 24682180E457BD223C2804C41BA78270 28960 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x64\RegBootDefrag.exe 2015-05-11 06:34:00 23B23CBE36DC4D6753C84AB86F9336E3 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x64\BootDefrag.exe 2015-05-11 06:33:58 C4FF71C63C382ED8B6729FA3916C842B 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wnet_x86\BootDefrag.exe 2015-05-11 06:33:58 11246F6FC18CAE148820ED30BAEAD4FE 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wnet_x64\BootDefrag.exe 2015-05-11 06:33:56 FA84310CC65D6E53BD5DEE76603BAB5B 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wlh_x86\BootDefrag.exe 2015-05-11 06:33:54 12DEA0D4AFE031BFF8193AE7F7366EFC 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wlh_x64\BootDefrag.exe 2015-05-11 06:33:52 75B426CF36CC690A9AA81A30B6AC8DF9 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\win7_x86\BootDefrag.exe 2015-05-11 06:33:48 27BE02736FE410FA3B64C07B9023FE8D 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\win7_x64\BootDefrag.exe 2015-05-11 06:33:46 EEA363B4BE2324E6A9D696050B3B95D5 17184 ----a-w- C:\Program Files (x86)\Glary Utilities 5\x64\Unistall.exe 2015-05-11 06:33:44 E530CD5C7B5931E587AB445AFAA14D37 136480 ----a-w- C:\Program Files (x86)\Glary Utilities 5\x64\Win64ShellLink.exe 2015-05-11 06:33:44 22A0D0C07CC5D47C4F5D6315E6D10CC4 63776 ----a-w- C:\Program Files (x86)\Glary Utilities 5\upgrade.exe 2015-05-11 06:33:42 9550B6C26060638051E5CD83C939B4A2 349472 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Uninstaller.exe 2015-05-11 06:33:40 78F9E0E2F7EA6A55F5614F559CE24E83 392992 ----a-w- C:\Program Files (x86)\Glary Utilities 5\SoftwareUpdate.exe 2015-05-11 06:33:34 0DD5DFA07F2BC6091A839A5CB23C799F 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\TracksEraser.exe 2015-05-11 06:33:30 EE314695A830768BF791FB20A58B5884 37152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe 2015-05-11 06:33:30 06A7AEC3C218132C38ED22B5E418BBC1 518432 ----a-w- C:\Program Files (x86)\Glary Utilities 5\sysinfo.exe 2015-05-11 06:33:26 C853A3ED1A6B0F0CF724CCA1FE4A9BDE 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\SpyRemover.exe 2015-05-11 06:33:24 AE7C47637F24380222297038B469B334 141088 ----a-w- C:\Program Files (x86)\Glary Utilities 5\shredder.exe 2015-05-11 06:33:12 2E3FCA38852E716C807CB0973F32C92B 37152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\RestoreCenter.exe 2015-05-11 06:33:08 F6305AD565D24E44423C5FEF3F2AF772 37152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\RegistryCleaner.exe 2015-05-11 06:33:02 3051431CC8E67F0C55BF9A7CDE596546 95008 ----a-w- C:\Program Files (x86)\Glary Utilities 5\regdefrag.exe 2015-05-11 06:33:00 9AA02A03564C003DE5F915DEFC4A09F9 368928 ----a-w- C:\Program Files (x86)\Glary Utilities 5\QuickSearch.exe 2015-05-11 06:32:58 46BB0D88D7E169EA37CF526646A0524E 342816 ----a-w- C:\Program Files (x86)\Glary Utilities 5\procmgr.exe 2015-05-11 06:32:56 48AF34892B89C3CD6D2E8EA3E76B18E1 135968 ----a-w- C:\Program Files (x86)\Glary Utilities 5\PortableMaker.exe 2015-05-11 06:32:56 20DDAA3CA6C64178B811C6D97995C55C 227616 ----a-w- C:\Program Files (x86)\Glary Utilities 5\OneClickMaintenance.exe 2015-05-11 06:32:46 AB7922CECC9B6B1DD96939461C61E24C 406816 ----a-w- C:\Program Files (x86)\Glary Utilities 5\MemfilesService.exe 2015-05-11 06:32:44 0A351C01062F61BA3B2AEC46F1169BCA 122656 ----a-w- C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe 2015-05-11 06:32:30 DDC5A8680EF52C3E5C02FEB03A1239B6 64288 ----a-w- C:\Program Files (x86)\Glary Utilities 5\joinExe.exe 2015-05-11 06:32:26 3F966D5BEE131EDD642DAAF9BE073EA5 377120 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Integrator_Portable.exe 2015-05-11 06:32:24 01D0F2058431E5EB0973E837BBCF810C 890144 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Integrator.exe 2015-05-11 06:32:20 21C9E24F5B09FBD4F3200B4419ED83DE 116000 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Initialize.exe 2015-05-11 06:32:14 EE97A8BDEC4817BBB0ED2894B8CECDE3 777504 ----a-w- C:\Program Files (x86)\Glary Utilities 5\iehelper.exe 2015-05-11 06:32:04 9F6F3A3DDF846E65D8419181384826C3 63776 ----a-w- C:\Program Files (x86)\Glary Utilities 5\gsd.exe 2015-05-11 06:31:58 6BC6852AD0303002F0CFBE2B35A83F1F 1469216 ----a-w- C:\Program Files (x86)\Glary Utilities 5\FileUndelete.exe 2015-05-11 06:31:56 77B35A4C370CFFCC044E9F609C7E6EE9 103200 ----a-w- C:\Program Files (x86)\Glary Utilities 5\filesplitter.exe 2015-05-11 06:31:54 57F5E78C5C2DB535E5045285C15BB68F 386848 ----a-w- C:\Program Files (x86)\Glary Utilities 5\EncryptExe.exe 2015-05-11 06:31:54 34CFAD8BE8947A1255AC5F69F883FBD9 189216 ----a-w- C:\Program Files (x86)\Glary Utilities 5\fileencrypt.exe 2015-05-11 06:31:52 BB27E7A0EF74CF09C2D77EA02552B2AE 381216 ----a-w- C:\Program Files (x86)\Glary Utilities 5\dupefinder.exe 2015-05-11 06:31:52 3652CB3173A5DF569CC99B2366065F24 218912 ----a-w- C:\Program Files (x86)\Glary Utilities 5\EmptyFolderFinder.exe 2015-05-11 06:31:50 71CC541DC0B48C5AC0A67CD4DDEC91F1 593696 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DriverBackup.exe 2015-05-11 06:31:48 723645F6F84179CC180C70288F39D189 417056 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DiskDefrag.exe 2015-05-11 06:31:44 DCE24E35AB30655E7AFC9C33D7E1520C 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DiskCleaner.exe 2015-05-11 06:31:42 1AD2DE2D8792E4277232DFF308D41140 387872 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DiskAnalysis.exe 2015-05-11 06:31:30 C798FB5B6050E33A8F5953AFD99A043C 958752 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CrashReport.exe 2015-05-11 06:31:22 B4D62BBF50EB67CFFB8EC3193AD5DCF7 137504 ----a-w- C:\Program Files (x86)\Glary Utilities 5\cmm.exe 2015-05-11 06:31:20 A64BAA85F579664AF49F7FDAFB5D7301 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CheckUpdate.exe 2015-05-11 06:31:16 3411BCAFEED9F65AD2A6A4A21114D729 68384 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CheckDiskProgress.exe 2015-05-11 06:31:12 BFBFD1D208A68250C1F415EFACDA3B87 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CheckDisk.exe 2015-05-11 06:31:04 5AB3A0C76A92B2F6E4A0D2395031882A 498464 ----a-w- C:\Program Files (x86)\Glary Utilities 5\AutoUpdate.exe 2015-05-10 06:48:33 2E1D22AC30F4B392CEAF3D7D59BE3626 2204160 ----a-w- C:\Users\Patrick\Desktop\adwcleaner_4.203.exe === C: other files == 2015-05-13 14:56:00 DE15349C594A66FB0A38882F66DFCF29 30 ----a-w- C:\Users\Patrick\AppData\Local\Temp\RarSFX0\Install.bat 2015-05-13 13:01:26 F7DFAE6040AC910B7C64EE208A34157D 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-05-13 13:01:26 8FE94F2EF9BF444E93E35D87E210D02F 155584 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-05-13 13:00:32 D858C33B133740D5F1F1CF71C33F6355 3204608 ----a-w- C:\Windows\System32\win32k.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-3130560279-3158009234-3752583673-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun" "Spotify Web Helper"="C:\Users\Patrick\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [HKEY_USERS\S-1-5-21-3130560279-3158009234-3752583673-1006\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3130560279-3158009234-3752583673-1006\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GUDelayStartup"="C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun" "Spotify Web Helper"="C:\Users\Patrick\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\Windows\\SysWOW64\\nvinit.dll C:\\Windows\\SysWOW64\\nvinit.dll C:\\Windows\\SysWOW64\\nvinit.dll C:\\Windows\\SysWOW64\\nvinit.dll C:\\Windows\\SysWOW64\\nvinit.dll C:\\Windows\\SysWOW64\\nvinit.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\System32\\nvinitx.dll C:\\Windows\\System32\\nvinitx.dll C:\\Windows\\System32\\nvinitx.dll" ==== Startup Registry Disabled ====================== [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "BitTorrent"="\"C:\\Users\\Patrick\\AppData\\Roaming\\BitTorrent\\BitTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BTMTrayAgent] "command"="rundll32.exe \"C:\\Program Files (x86)\\Intel\\Bluetooth\\btmshell.dll\",TrayApp" "hkey"="HKLM" "item"="BTMTrayAgent" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvBackend] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvBackend" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\NVIDIA Corporation\\Update Core\\NvBackend.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OpwareSE4] "command"="\"C:\\Program Files (x86)\\ScanSoft\\OmniPageSE4\\OpwareSE4.exe\"" "hkey"="HKLM" "item"="OpwareSE4" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl] "command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s" "hkey"="HKLM" "item"="RtHDVCpl" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SSBkgdUpdate] "command"="\"C:\\Program Files (x86)\\Common Files\\Scansoft Shared\\SSBkgdUpdate\\SSBkgdupdate.exe\" -Embedding -boot" "hkey"="HKLM" "item"="SSBkgdUpdate" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh] "command"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" "hkey"="HKLM" "item"="SynTPEnh" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Mobile-based device management] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Windows Mobile-based device management" "hkey"="HKLM" "command"="%WINDIR%\\WindowsMobile\\wmdcBase.exe" ==== Task Scheduler Jobs ====================== C:\windows\tasks\Adobe Flash Player Updater.job --a------ C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [05/05/2015 21:59] C:\windows\tasks\CCleanerClean.job --a------ C:\Program Files\CCleaner\CCleaner.exe [13/03/2015 13:10] C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3130560279-3158009234-3752583673-1001Core.job --a------ C:\Users\Patrick\AppData\Local\Facebook\Update\FacebookUpdate.exe [07/03/2014 18:56] C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3130560279-3158009234-3752583673-1001UA.job --a------ C:\Users\Patrick\AppData\Local\Facebook\Update\FacebookUpdate.exe [07/03/2014 18:56] C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/04/2013 19:05] C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/04/2013 19:05] ==== Other Scheduled Tasks ====================== "C:\windows\SysNative\tasks\Adobe Flash Player Updater" [C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\windows\SysNative\tasks\Adobe online update program" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\windows\SysNative\tasks\advSRS5" ["C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe"] "C:\windows\SysNative\tasks\AnVir Task Manager" [C:\Program Files (x86)\AnVir Task Manager Pro\AnVir.exe] "C:\windows\SysNative\tasks\CCleanerClean" [C:\Program Files\CCleaner\CCleaner.exe] "C:\windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\windows\SysNative\tasks\EasyBatteryManager" ["%ProgramFiles(x86)%\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe"] "C:\windows\SysNative\tasks\EasyDisplayMgr" ["C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe"] "C:\windows\SysNative\tasks\EasySettings" ["C:\Program Files (x86)\Samsung\Easy Settings\sSettings.exe"] "C:\windows\SysNative\tasks\EasySettings_config" ["C:\Program Files (x86)\Samsung\Easy Settings\sSettings.exe"] "C:\windows\SysNative\tasks\EasySpeedUpManager" ["%programfiles(x86)%\Samsung\Easy Settings\EasySpeedUpManager.exe"] "C:\windows\SysNative\tasks\EasySupportCenter" ["%ProgramFiles%\Samsung\Easy Support Center\SamoyedAgent.exe"] "C:\windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3130560279-3158009234-3752583673-1001Core" [C:\Users\Patrick\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3130560279-3158009234-3752583673-1001UA" [C:\Users\Patrick\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\windows\SysNative\tasks\GlaryInitialize 5" [C:\Program Files (x86)\Glary Utilities 5\Initialize.exe] "C:\windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\GU5SkipUAC" [C:\Program Files (x86)\Glary Utilities 5\Integrator.exe] "C:\windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe] "C:\windows\SysNative\tasks\MovieColorEnhancer" ["%programfiles(x86)%\Samsung\Easy Settings\MovieColorEnhancer.exe"] "C:\windows\SysNative\tasks\RtHDVBg" ["C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe"] "C:\windows\SysNative\tasks\RTKCPL" ["C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"] "C:\windows\SysNative\tasks\SAgent" ["%ProgramFiles%\Samsung\S Agent\CommonAgent.exe"] "C:\windows\SysNative\tasks\SCCSpeedBoot" ["%programfiles(x86)%\Samsung\Easy Settings\SCCSpeedBoot.exe"] "C:\windows\SysNative\tasks\SmartSetting" ["%programfiles(x86)%\Samsung\Easy Settings\SmartSetting.exe"] "C:\windows\SysNative\tasks\SpyHunter4Startup" ["C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe"] "C:\windows\SysNative\tasks\WLANStartup" ["%programfiles(x86)%\Samsung\Easy Settings\WLANStartup.exe"] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\xhyfxjma.default user_pref("browser.startup.homepage", "about:superstart"); ==== Firefox Extensions ====================== ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\xhyfxjma.default - Super Start - %ProfilePath%\extensions\superstart@enjoyfreeware.org - FEBE - %ProfilePath%\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi ProfilePath: C:\Users\Patrick\AppData\Roaming\TomTom\HOME\Profiles\a0rb66g0.default - Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\xhyfxjma.default AE7B288233C212C62CD544BF768C45E6 - C:\windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll - Shockwave for Director / Shockwave for Director 9AE02005247DA91AB1743F5208DBEF76 - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll - Shockwave Flash 77B8694352764F6079A2332FAD7FD426 - C:\Users\Patrick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player FF0D6F82A0EC13952E83B9439100E45D - C:\Users\Patrick\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.101 selector is not a valid CSS selector - Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Blur Privacy Dashboard - Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjidbdiahninbecbcigapoocbkfncobc Google Wallet - Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Uses more than 50 million people free for Chrome that blocks all ads and pests is an ad blocker . - Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjneefplhjnecnnilnkhhlchdamjpoib ==== Chromium Startpages ====================== C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "https://www.google.be/?gws_rd=sslcom/?type=hp&ts=1426587774&from=wpc&uid=ST1000LM024XHN-M101MBB_S2RQJ9CC617171", "startup_urls": [ "https://www.google.be/?gws_rd=ssl" ] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" "Default_Page_URL"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {C5F32B02-E182-4D1D-BD16-A11FEE4B1CD5} Google Url="https://www.google.com/search?q={searchTerms}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Patrick\AppData\Roaming\Spotify\SpotifyWebHelper.exe" O4 - HKUS\S-1-5-21-3130560279-3158009234-3752583673-1006\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-3130560279-3158009234-3752583673-1006\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: linkscanner - (no CLSID) - (no file) O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: c:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\nvinit.dll O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing) O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: Easy Launcher - Samsung Electronics CO., LTD. - C:\Program Files (x86)\Samsung\Easy Settings\CmdServer\EasyLauncher.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing) O23 - Service: Genie Timeline Service (GenieTimelineService) - Genie9 - C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing) O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: Macrium Reflect Image Mounting Service (ReflectService.exe) - Paramount Software UK Ltd - C:\Program Files\Macrium\Reflect\ReflectService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: SamsungDeviceConfiguration (SamsungDeviceConfigurationWinService) - Unknown owner - C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing) O23 - Service: SW Update Service (SWUpdateService) - Samsung Electronics CO., LTD. - C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing) O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Patrick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Patrick\AppData\Local\Mozilla\Firefox\Profiles\xhyfxjma.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2359 folders=337 388894082 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Patrick\AppData\Local\Temp will be emptied at reboot C:\Users\Public\AppData\Local\temp emptied successfully C:\Users\TEMP\AppData\Local\temp emptied successfully C:\Users\TEMP.Patrick-PC\AppData\Local\temp emptied successfully C:\Users\TEMP.Patrick-PC.000\AppData\Local\temp emptied successfully C:\Users\TEMP.Patrick-PC.001\AppData\Local\temp emptied successfully C:\Users\TEMP.Patrick-PC.002\AppData\Local\temp emptied successfully C:\Users\TEMP.Patrick-PC.003\AppData\Local\temp emptied successfully C:\Users\UpdatusUser\AppData\Local\temp emptied successfully C:\Users\UpdatusUser.Patrick-PC\AppData\Local\temp emptied successfully C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\windows\Temp successfully emptied C:\Users\Patrick\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on vr 15/05/2015 at 11:54:29,56 ======================